Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Oracle E-Business Suite unauth HTTP takeover security flaw (CVE-2026-46817)

Vulnerability
First reported
Last updated
Happening score
H score 52
1 unique sources, 1 articles

Summary

Hide ▲

Oracle E-Business Suite (EBS) CVE-2026-46817 is under active exploitation, putting Oracle Payments File Transmission deployments at takeover risk. The flaw allows unauthenticated HTTP access to compromise vulnerable systems through a low-complexity attack path. Oracle says it addressed the issue in the May 2026 Critical Security Patch Update, and exposed EBS instances remain at risk until patched.

Related Happenings

Oracle WebLogic Server unauthenticated remote compromise flaw (CVE-2024-21182)

Vulnerability
H score59 First: 02.06.2026 15:40 Last: 02.06.2026 15:40 Sources 1

About this happening: **CVE-2024-21182** in **Oracle WebLogic Server** is **actively exploited** and can let a **network-access attacker** achieve **unauthenticated remote compromise**. The flaw affect...

Open Happening

CISA orders federal patching of Oracle WebLogic CVE-2024-21182

Public Sector Action
H score53 First: 02.06.2026 15:40 Last: 02.06.2026 15:40 Sources 1

About this happening: CISA ordered **federal agencies** to patch **Oracle WebLogic Server** against **CVE-2024-21182** by **June 4**, creating an immediate remediation deadline for affected government...

Open Happening

Clop ransomware campaign targeting Gladinet CentreStack servers

Campaign
H score55 First: 18.12.2025 22:16 Last: 18.12.2025 22:16 Sources 1

About this happening: The **Clop/Cl0p ransomware gang** is running a **data theft extortion campaign** against **Internet-exposed Gladinet CentreStack file servers**, raising the risk of compromise for...

Open Happening

Clop ransomware gang campaign expands across multiple victims

Campaign
H score62 First: 02.12.2025 14:55 Last: 02.12.2025 14:55 Sources 1

About this happening: A **Clop** extortion campaign is actively stealing data from **Oracle E-Business Suite** customers using **CVE-2025-61882**, putting multiple organizations at risk of theft and le...

Open Happening

Holiday-season phishing and stolen e-commerce login surge ahead of Black Friday

Trend
H score53 First: 26.11.2025 06:29 Last: 26.11.2025 06:29 Sources 1

About this happening: **Holiday-themed phishing** is intensifying against **e-commerce shoppers** ahead of **Black Friday** and **Christmas**, with defenders seeing **at least 750 malicious domains** r...

Open Happening

Timeline

  1. 29.06.2026 16:46 2 articles · 2h ago

    Defused says attackers are exploiting Oracle E-Business Suite CVE-2026-46817

    Initial Disclosure

    Defused said attackers are actively exploiting CVE-2026-46817 in Oracle E-Business Suite, with the first attempts observed over the weekend against the File Transmission component in Oracle Payments. The flaw allows unauthenticated malicious actors with HTTP network access to take over vulnerable systems through low-complexity attacks, and Oracle says it addressed the issue in the May 2026 Critical Security Patch Update and urged customers to patch immediately. Shadowserver also reported more than 450 Oracle EBS instances exposed online, including nearly 200 in the United States and Europe, while no public proof-of-concept code is known.

    Show sources
    Open in new tab